$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: U7Fa3F1LdlAQhWotljJt9FX1K9QYtHj/Iasw6g0gbl8= Subject key identifier: B3:D6:24:D2:5A:38:BD:96:A3:0C:49:85:A0:0E:57:61:74:07:BB:9F Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 0283 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 027F Signing time: Sun 11 May 2025 01:10:56 +0000 Manifest this update: Sun 11 May 2025 01:10:56 +0000 Manifest next update: Sun 18 May 2025 01:10:56 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: 2+D2lIbieYoZ3BKaY/UgJ8X/vFCPFusAioTggrkyuWA=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: u8H4NSNtBcIg5GrlIWnmn+sl29NyMYEZMtRVlCln8c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: May 11 01:10:56 2025 GMT Not After : May 18 01:10:56 2025 GMT Subject: CN=681ff920-abf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:19:fd:ab:1b:bc:aa:cf:28:b0:cb:16:0c:cd: 17:42:3d:f5:43:6c:f3:1e:25:19:90:65:bc:6c:30: 84:13:de:ed:6e:d6:c5:b3:50:e2:c6:2a:3b:0d:96: 49:12:ce:b4:17:e6:0a:1d:33:2a:20:8c:3d:b0:2c: 9f:46:ed:6b:31:47:7f:96:d9:27:9b:7a:f3:c4:f0: 66:6b:80:00:2c:3a:8b:44:1f:7f:22:54:59:23:6b: 36:bc:50:d1:7a:fc:29:1c:59:c5:00:f6:4e:b2:76: f8:b4:f8:13:34:78:40:9e:4b:19:8b:be:09:c7:84: df:9d:d6:29:3c:15:33:bb:62:21:10:12:fe:ea:8f: 59:84:0c:b7:92:7a:b5:18:4b:f5:7e:e5:56:a3:84: a7:bd:d7:25:88:6e:4b:04:c3:7b:31:12:4e:4e:f3: c9:33:4f:c3:11:7a:49:07:94:c9:96:ff:cd:de:ea: f3:19:7f:67:2b:4e:fc:ec:df:a2:30:99:fd:0b:66: b2:1d:68:44:13:0b:38:61:d0:58:63:51:1d:77:12: 0d:ea:5c:f7:f3:6e:12:27:ad:25:e9:35:1f:0e:d3: bc:8d:37:15:e3:14:a3:9e:ad:72:bc:9f:76:8b:8e: a8:84:75:9e:49:07:1b:aa:ce:33:fe:45:3f:22:4e: ca:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D6:24:D2:5A:38:BD:96:A3:0C:49:85:A0:0E:57:61:74:07:BB:9F X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:4d:38:78:c9:d4:74:2d:1a:d7:3c:ec:ef:05:ad:ea:da:b1: 42:00:69:41:a7:0d:92:17:99:ec:48:bc:59:b8:30:d5:8c:f8: 53:ca:c4:b7:2c:80:9e:55:84:09:26:0b:ae:f6:c1:4f:9d:c7: 12:f2:a1:d0:77:bb:c4:83:51:da:d9:38:31:8d:79:9f:a4:ba: 84:fb:e3:49:60:e9:43:4d:56:4e:4c:d3:77:90:26:1d:74:db: 6c:6a:44:ce:63:25:61:4d:4c:13:e1:71:42:7a:17:8e:04:fa: 3e:97:fa:42:3e:a7:47:9b:41:19:11:1b:17:95:d3:be:f8:5d: 6f:c5:d2:8a:01:79:bb:1f:18:a2:48:66:e5:d6:08:6e:ea:07: 0e:72:03:16:e5:29:6b:ab:65:3f:6f:85:a1:8b:ab:bb:9b:f9: f0:17:d4:9b:0e:78:c3:67:23:9b:08:12:44:ad:ed:3c:d1:79: 02:f3:3a:7f:65:4f:a7:b6:fc:59:3e:ce:4b:a7:90:c2:01:37: 6f:61:ad:03:b9:07:81:c8:5d:cb:fa:33:aa:cc:33:e4:d5:69: ba:3b:c8:9f:f5:84:35:c0:57:d0:42:8d:9e:2c:8a:43:3d:2c: 25:91:9d:d8:42:4f:96:62:41:48:63:da:47:7d:a3:c6:f7:f4: b7:cf:92:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjUwNTExMDExMDU2WhcNMjUwNTE4MDExMDU2WjAYMRYwFAYD VQQDEw02ODFmZjkyMC1hYmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5hn9qxu8qs8osMsWDM0XQj31Q2zzHiUZkGW8bDCEE97tbtbFs1Dixio7DZZJ Es60F+YKHTMqIIw9sCyfRu1rMUd/ltknm3rzxPBma4AALDqLRB9/IlRZI2s2vFDR evwpHFnFAPZOsnb4tPgTNHhAnksZi74Jx4TfndYpPBUzu2IhEBL+6o9ZhAy3knq1 GEv1fuVWo4SnvdcliG5LBMN7MRJOTvPJM0/DEXpJB5TJlv/N3urzGX9nK0787N+i MJn9C2ayHWhEEws4YdBYY1EddxIN6lz3824SJ60l6TUfDtO8jTcV4xSjnq1yvJ92 i46ohHWeSQcbqs4z/kU/Ik7K0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPWJNJa OL2WowxJhaAOV2F0B7ufMB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDITTh4ydR0LRrXPOzvBa3q2rFCAGlBpw2SF5nsSLxZuDDVjPhTysS3 LICeVYQJJguu9sFPnccS8qHQd7vEg1Ha2TgxjXmfpLqE++NJYOlDTVZOTNN3kCYd dNtsakTOYyVhTUwT4XFCeheOBPo+l/pCPqdHm0EZERsXldO++F1vxdKKAXm7Hxii SGbl1ghu6gcOcgMW5Slrq2U/b4Whi6u7m/nwF9SbDnjDZyObCBJEre080XkC8zp/ ZU+ntvxZPs5Lp5DCATdvYa0DuQeByF3L+jOqzDPk1Wm6O8if9YQ1wFfQQo2eLIpD PSwlkZ3YQk+WYkFIY9pHfaPG9/S3z5JL -----END CERTIFICATE-----Generated at Mon May 12 19:07:16 2025 by rpki-client